Tin Hat is a Linux distribution derived from hardened Gentoo. It aims to provide a very secure, stable, and fast desktop environment that lives purely in RAM. Tin Hat boots from CD, or optionally USB pen drive, but it is not a LiveCD in that it does not mount any file system from the boot device. Rather, Tin Hat employs a massive squashfs image which expands into tmpfs upon booting. This makes for long boot times, but remarkable speeds during human-computer interaction.
Krypt is a simple application that sits in the system tray and provides easy access to the list of volumes encrypted with LUKS. It is possible to quickly decrypt, encrypt back, mount, and umount such devices. It also monitors HAL activity, and responds by showing a pop-up with password prompt. When the password is provided, KDE's media manager kicks in and does its job. Passwords for volumes can be stored either in a configuration file or in KDE Wallet.
Pidgin-paranoia is a plugin for Pidgin (formerly known as Gaim) that provides information-theoretically secure encrypted conversations using one-time pads. Because the plugin uses a one-time pad where the secret key has the same length as the message and the key is only used once, the encryption is information-theoretically secure. This means that from the encrypted messages the contents of the messages are not revealed. In short: If you use truly random numbers to generate the key files, and if you keep them perfectly secret, one-time pads can not be broken.
BlueProximity helps add a little more security to the desktop. It does so by detecting a certain Bluetooth device, most likely a mobile phone, and keeping track of its distance. If it is moved away from the computer and the distance is above a certain level (no measurement in meters is possible) for a given time, it automatically locks the desktop (or starts any other shell command wanted). Once away, the computer awaits its master's return: if the device is nearer than a given level for a set time, the computer unlocks without any interaction (or starts any other shell command wanted).
vlock is a program to lock one or more sessions on the Linux console. This is especially useful for Linux machines which have multiple users with access to the console. One user may lock his or her session(s) while still allowing other users to use the system on other virtual consoles. If desired, the entire console may be locked and virtual console switching disabled.
Alerttail monitors a given file and executes a list of actions when a user-defined text pattern has been written to the file. For example, the user can pop up a GTK notification window when a certain message is written to a log file. Actions can be alerttail built in actions (GTK notify action, geoipLocalization action, or filtering text action) or a custom user defined shell command action. A Qt 4 GUI frontend helps with configuration.